Embedded subscriber identity module non-fungible token system

This application claims priority to U.S. Provisional Application Ser. No. 63/202,259, filed Jun. 3, 2021, which is hereby incorporated by reference in its entirety.

Embodiments disclosed herein generally relate to a telecommunication system, and more particularly to an embedded subscriber identity module non-fungible token system.

Subscriber identity module (SIM) cards play an integral role in mobile telecommunication systems. Over the years, SIM cards have gone from physical devices that are inserted into a mobile device when initializing a mobile device with a carrier's network to embedded SIM chips that are hardcoded within the mobile device.

In some embodiments, a telecommunication system is disclosed herein. The telecommunication system includes a computing device and a mobile device. The computing device is in communication with a blockchain network, a subscription manager data preparation (SM-DP) platform, and the mobile device. The computing device is configured to perform a first set of operations. The first set of operations includes retrieving an identity token from the blockchain network. The identity token is a first non-fungible token uniquely identifying a user of the mobile device. The first set of operations further includes retrieving, from the SM-DP platform, an embedded subscriber identity module (eSIM) profile for the given identity token from the blockchain network. The first set of operations further includes generating, via the blockchain network, a second non-fungible token. The second non-fungible token includes the eSIM profile. The mobile device is in communication with the blockchain network. The mobile device is configured to perform a second set of operations. The second set of operations includes downloading, from the blockchain network, the second non-fungible token. The second set of operations further include unpacking the eSIM profile from the second non-fungible token. The second set of operations further include installing the eSIM profile on an eSIM chip associated with the mobile device.

In some embodiments, a method is disclosed herein. The computing device retrieves an identity token from a blockchain network. The identity token can be a first non-fungible token uniquely identifying a user of a mobile device to be registered with a mobile network operator. The computing device retrieves, from a subscription manager data preparation (SM-DP) platform associated with the mobile network operator, an embedded subscriber identity module (eSIM) profile for the given identity token from the blockchain network. The computing device generates, via the blockchain network, a second non-fungible token. The second non-fungible token can include the eSIM profile. The computing device causes the mobile device to be registered with the mobile network operator using the second non-fungible token.

In some embodiments, a non-transitory computer readable medium is disclosed herein. The non-transitory computer readable medium includes instructions which, when executed by a computing system, cause the computing system to perform operations. The operations include retrieving, by the computing system, an identity token from a blockchain network. The identity token is a first non-fungible token uniquely identifying a user of a mobile device to be registered with a mobile network operator. The operations further include retrieving, by the computing system from a subscription manager data preparation (SM-DP) platform associated with the mobile network operator, an embedded subscriber identity module (eSIM) profile for the given identity token from the blockchain network. The operations further include generating, by the computing system via the blockchain network, a second non-fungible token. The second non-fungible token includes the eSIM profile. The operations further include causing, by the computing system, the mobile device to be registered with the mobile network operator using the second non-fungible token.

To facilitate understanding, identical reference numerals have been used, where possible, to designate identical elements that are common to the figures. It is contemplated that elements disclosed in one embodiment may be beneficially utilized on other embodiments without specific recitation.

Conventionally, owners of mobile devices would be required to physically insert a SIM card into a SIM card slot of the mobile device. The SIM card allows the owner of the mobile device to access functionality of a mobile provider's network. As technology has improved, the conventional SIM card has been replaced by an embedded SIM (eSIM) chip that is embedded directly into the mobile device. To gain access to a mobile provider's network using an eSIM chip, users would need to download an eSIM profile from a mobile network operator and install the eSIM profile on a slot of the eSIM chip. While such a process is more efficient than the swapping out or installing of physical devices SIM cards, it is especially prone to fraudulent individuals either intercepting the eSIM profile or spoofing the mobile owner's identity so that the fraudulent individual can download the user's eSIM profile.

One or more techniques described herein improves upon the eSIM process by providing a mechanism through which a mobile owner can gain access to an eSIM profile via a non-fungible token.

The term “user” as used herein includes, for example, a person or entity that owns a computing device or wireless device; a person or entity that operates or utilizes a computing device; or a person or entity that is otherwise associated with a computing device or wireless device. It is contemplated that the term “user” is not intended to be limiting and may include various examples beyond those described.

is a block diagram illustrating a computing environment, according to one embodiment. Computing environmentmay include at least one or more mobile devices, blockchain network, a subscription manager data preparation (SM-DP), a mobile network operator, and a computing devicecommunicating via network.

Networkmay be representative of any suitable type, including individual connections via the Internet, such as cellular or Wi-Fi networks. In some embodiments, networkmay connect terminals, services, and mobile devices using direct connections, such as radio frequency identification (RFID), near-field communication (NFC), Bluetooth™, low-energy Bluetooth™ (BLE), Wi-Fi™, ZigBee™, ambient backscatter communication (ABC) protocols, USB, WAN, or LAN. Because the information transmitted may be personal or confidential, security concerns may dictate one or more of these types of connection be encrypted or otherwise secured. In some embodiments, however, the information being transmitted may be less personal, and therefore, the network connections may be selected for convenience over security.

Networkmay include any type of computer networking arrangement used to exchange data. For example, networkmay be representative of the Internet, a private data network, virtual private network using a public network and/or other suitable connection(s) that enables components in computing environmentto send and receiving information between the components of computing environment.

Mobile devicemay be operated by a user. Mobile devicemay belong to or be provided to a customer or may be borrowed, rented, or shared. Customers may include individuals such as, for example, subscribers or customers of an entity associated with mobile network operator, such as individuals who have obtained the mobile device and/or a mobile plan from an entity associated with mobile network operator.

Mobile devicemay include applicationand embedded subscriber identity module (eSIM). Applicationmay be representative of a web browser that allows access to a website or a stand-alone application. Mobile devicemay access applicationto access functionality of blockchain network. For example, mobile devicemay communicate over networkto request a non-fungible token, for example, from blockchain network. In some embodiments, applicationmay be representative of a software development kit associated with a custom read-only memory operating system. For example, applicationmay be representative of a software development kit for a custom Android read-only memory stored and executed on mobile device.

Applicationmay communicate with blockchain networkto download a non-fungible token with an eSIM profile to mobile device. In some embodiments, such communication may be facilitated through one or more application programming interfaces (APIs) linking applicationto functionality of blockchain network. Applicationmay then unpack the eSIM profile from the non-fungible token and store the eSIM profile on eSIM chip. The eSIM profile may represent the phone number to be associated with mobile device. The eSIM profile non-fungible token may be used for various authentication processes rather than relying solely on the phone number.

eSIM chipmay be representative of a programmable SIM card or chip that is directly embedded in mobile device. Rather than require a user of mobile deviceto install a physical SIM card when a user registers mobile devicewith mobile network operatoror rather than require a user of mobile deviceto swap out physical SIM cards when a user changes mobile network operators (e.g., SIM card #works with mobile network operator #and SIM card #works with mobile network operator #), eSIM chipmay allow a user to register with mobile network operatoror change mobile network operators without requiring the user to physically install a SIM card. In other words, eSIM chipmay allow for remote SIM provisioning.

Mobile network operatormay be representative of a provider of wireless communication services to mobile device. In order for mobile network operatorto provide services to mobile device, mobile devicemay obtain a physical SIM card or eSIM profile that is associated with mobile network operator. Data associated with the eSIM profile enables mobile deviceto take advantage of the services provided by mobile network operator.

Computing devicemay be representative of a computing system associated with mobile network operator. Computing devicemay be configured to perform various operators to facilitate remote SIM provisioning for mobile device. Computing devicemay include wallet. Walletmay be representative of digital wallet that allows computing deviceto store and manage their cryptocurrency and/or digital assets. For example, walletmay be representative of a storage location on computing devicefor storing one or more non-fungible tokens associated with subscribers to mobile network operator.

In some embodiments, computing devicemay be configured to establish one or more identity tokens for subscribers to mobile network operator. The identity token may be a non-fungible token that uniquely identifies a user of mobile device. The identity token may be stored on a blockchain ledger associated with blockchain network. To generate the identity token, computing devicemay access functionality of blockchain network. Via blockchain network, computing devicemay generate or “mint” a non-fungible token corresponding to a user of mobile device. In some embodiments, the non-fungible token may include, as metadata, information associated with the user of mobile device. Once generated, the identity token may be stored on a blockchain ledger associated with blockchain network.

In some embodiments, once the identity token is generated and stored on the blockchain ledger, computing devicemay utilize the identity token to verify the identity of mobile deviceto SM-DP. The verification process may result in SM-DPproviding computing devicewith an eSIM profile to be provided to mobile device. Responsive to receiving the eSIM profile, computing devicemay generate a non-fungible token with the eSIM profile as metadata. For example, computing devicemay communicate or access blockchain networkto generate or mint a non-fungible token having the eSIM profile as metadata. Once generated, mobile devicemay fetch the non-fungible token with the eSIM profile from blockchain network.

In some embodiments, the identity token may be propagated to blockchain networkin the form of a directed acyclic graph. Interactions with each self-sovereign identity, or identity token, on blockchain networkmay be propagated into relationships on the acyclic graphic, with each identity token representing an identity on the directed graph. In some embodiments, the identities may include individuals or entities.

An entity in the directed graph can represent a broad range of non-individual participants, including but not limited to businesses, devices, arbitrary applications, and the like. Relationships between individuals and/or entities may be established on a selective disclosure matrix that is in accordance with a non-fungible token relationship contract framework. In some embodiments, the identity token may be configured a manner such that various types of disclosures and/or properties can be incorporated into the body of the identity token with a reference locator to a decentralized storage solution. By incorporating such information into the body of the identity token, the identity token can be used for additional functionality. For example, the types of disclosures/properties that can be incorporated into the body of an identity token with a reference locator to a decentralized storage solution may fall under one of the following categories:

In some embodiments, relationships between identity tokens, individuals, or entities may be managed by a decentralized framework for establishing web3.0 relationships using non-fungible tokens as unique identifiers. In some embodiments, relationship contracts may have plug and play disclosure requirements to create a unique relationship between two identity tokens. In some embodiments, all relevant interactions between the two non-fungible tokens, from the point of establishment of a relationship between the two non-fungible tokens, may propagate into their own subgraph. From an implementation perspective, the subgraph may be a derivative non-fungible token of the two or more entities that fit into a directed identity graph (DIG) relationship framework. In some embodiments, an economic system incentivizing interactions, joining the validator set and reliable attestation service providers can be established on the directed identity graph.

Blockchain networkmay be representative of a network configured to provide blockchain services to computing deviceand/or mobile network operator. Blockchain networkmay be configured to support the creation or minting of non-fungible tokens. Generally, blockchain networkmay include a blockchain ledger associated therewith. In some embodiments, the blockchain ledger may be configured to store non-fungible tokens generated within blockchain network. In some embodiments, the blockchain ledger may be a public ledger. In some embodiments, the blockchain ledger may be a private ledger uniquely associated with members of mobile network operatorand/or computing device.

is a block diagram illustrating communication among components of computing environment, according to example embodiments. The operations described inmay be associated with a process of registering mobile devicewith a carrier's services (e.g., registering with mobile network operator), according to example embodiments.

At block, computing devicemay submit a request to blockchain networkto create an identity token. The identity token may be a non-fungible token that uniquely identifies a user of mobile device. The identity token may be used to represent the user of mobile deviceand as a security proof of verification in downstream processes. The identity token may not be replicated and may not be mutually interchangeable.

At block, blockchain networkmay receive the request from computing device. Upon receiving the request, blockchain networkmay generate the identity token for a user of mobile device. Blockchain networkmay further store the identity token on a blockchain ledger associated with blockchain network. Blockchain networkmay then provide the identity token to computing devicefor storage in wallet.

At block, computing devicemay request an eSIM profile from SM-DP. The request may include the identity token that uniquely identifies the user of mobile device. In some embodiments, rather than computing devicerequesting the eSIM profile from SM-DP, SM-DPmay periodically poll computing deviceto determine when new identity tokens have been generated or minted.

At block, SM-DPmay receive and verify the identity token from mobile device. In some embodiments, SM-DPmay perform a zero knowledge proof to verify the identity token. If SM-DPverifies the identity token, the SM-DPmay transmit an eSIM profile to computing devicefor further processing. The eSIM profile may enable mobile deviceto take advantage of the services provided by mobile network operator.

At block, computing devicemay submit a request to blockchain networkto generate a non-fungible token based on the eSIM profile. For example, computing devicemay access blockchain networkto generate or mint a second non-fungible token with the eSIM profile as metadata. In this manner, when a device unpacks the non-fungible token, the device may have access to the eSIM profile.

At block, blockchain networkmay receive the request from computing device. Upon receiving the request, blockchain networkmay generate the second non-fungible token with the eSIM profile as metadata. Blockchain networkmay further store the second non-fungible token on a blockchain ledger associated with blockchain network. Blockchain networkmay optionally then provide the second non-fungible token to computing devicefor storage in wallet.

At block, mobile devicemay fetch or retrieve the second non-fungible token from blockchain network. For example, applicationmay be configured to interact with blockchain networksuch that, when the second non-fungible token is generated and stored on a blockchain ledger, applicationmay download the second non-fungible token from blockchain network. In some embodiments, mobile devicemay fetch or retrieve the second non-fungible token from blockchain networkwhen prompted by the user of mobile device. For example, the user of mobile devicemay prompt mobile deviceto fetch or retrieve the second non-fungible token when setting up a subscription number on mobile device. In some embodiments, mobile devicemay communicate with blockchain networkvia one or more APIs linking applicationto functionality of blockchain network.

In some embodiments, when mobile devicefetches or retrieves the second non-fungible token from blockchain network, mobile devicemay use an identifier or ID that computing devicereturned to the user when the second non-fungible token was generated. In some embodiments, when mobile devicefetches or retrieves the second non-fungible token from blockchain network, mobile devicemay providing blockchain networkwith an identifier or ID associated with the user's identity token. In this manner, blockchain networkmay know which token to provide to mobile device.

At block, upon downloading the second non-fungible token, applicationmay unpack the eSIM profile from the second non-fungible token. Once the eSIM profile is unpacked, applicationmay store the eSIM profile on eSIM chip. In this manner, mobile devicemay work directly with blockchain networkto download the second non-fungible token and extract the eSIM profile instead of directly communicating with SM-DPand/or mobile network operator.

At block, upon storing the eSIM profile on eSIM chip, mobile devicemay connect to mobile network operator. In this manner, mobile devicemay be granted access to services provided by mobile network operator.

is a flow diagram illustrating a telecommunications method, according to example embodiments. Methodmay begin at step.

At step, computing devicemay request an identity token for a user of mobile device. In some embodiments, requesting an identity token for the user of mobile devicemay include initiating generation of the identity token for the user of mobile device. For example, computing devicemay submit a request to blockchain networkto create an identity token. The identity token may be a non-fungible token that uniquely identifies a user of mobile device. The identity token may be used to represent the user of mobile deviceand as a security proof of verification in downstream processes.

In some embodiments, the identity token may already be generated and stored on a blockchain ledger for a user of mobile device. For example, a user of mobile devicemay be switching mobile device carriers. In another example, a user of mobile devicemay be a pre-existing customer and is setting up a new device (e.g., mobile device) with a mobile device carrier. In such embodiments, computing devicemay simply request the identity token from blockchain network. For example, computing devicemay provide blockchain networkmay an identifier or ID associated with the identity token.

At step, computing devicemay receive the identity token from blockchain network. For example, responsive to blockchain networkreceiving the request from computing device, blockchain networkmay provide the requested identity token to walletof computing device.

At step, computing devicemay request an eSIM profile from SM-DP. For example, responsive to receiving the identity token, computing devicemay request an eSIM profile from SM-DPusing the received identity token. SM-DPmay verify the identity token from mobile device. For example, SM-DPmay perform a zero knowledge proof to verify the identity token.

At block, computing devicemay receive the eSIM profile from SM-DP. For example, responsive to SM-DPverifying the identity token, the SM-DPmay transmit an eSIM profile to computing devicefor further processing. The eSIM profile may enable mobile deviceto take advantage of the services provided by mobile network operator.

At block, computing devicemay generate a non-fungible token with the eSIM profile. For example, computing devicemay access blockchain networkto generate or mint a non-fungible token with the eSIM profile as metadata. In this manner, when a device unpacks the non-fungible token, the device may have access to the eSIM profile. Blockchain networkmay store the non-fungible token on a blockchain ledger associated with blockchain network.

is a flow diagram illustrating a methodof registering mobile devicewith mobile network operator, according to example embodiments. Methodmay begin at step.

At step, mobile devicemay establish a connection with blockchain network. For example, applicationexecuting on mobile devicemay establish a connection with blockchain network. In some embodiments, the connection may be established via one or more APIs linking mobile deviceto functionality of blockchain network.

At step, mobile devicemay access a non-fungible token stored on a blockchain ledger associated with blockchain network. For example, once the connection is established between mobile deviceand blockchain networkvia application, applicationmay download the non-fungible token from blockchain network. In some embodiments, mobile devicemay download the non-fungible token via one or more APIs linking applicationto functionality of blockchain network.

At step, mobile devicemay unpack the non-fungible token to extract the eSIM profile. For example, upon receiving the non-fungible token from blockchain network, applicationmay unpack the non-fungible token to access the eSIM profile, which was stored as metadata in the non-fungible token.

At step, mobile devicemay store the eSIM profile on eSIM chip. For example, applicationmay store the eSIM profile in an open slot of eSIM chip. In this manner, mobile devicemay work directly with blockchain networkto download the non-fungible token and extract the eSIM profile instead of directly communicating with SM-DPand/or mobile network operator.

In some embodiments, methodmay include step. At step, mobile devicemay establish a connection with mobile network operator. Once established, mobile devicemay be able to access functionality of a mobile network associated with mobile network operator.

is a block diagram illustrating an identity graph, according to example embodiments. As shown, identity graphmay illustrate identity tokens along the x-axis and epochs across the y-axis. Identity graphmay illustrate various relationships or interactions between identity tokens.